LIMITED TIME

50% OFF your entire order — single vials & kits

Privacy Policy

Privacy Policy

We take your privacy seriously. This policy explains exactly what data we collect, why we collect it, and how we protect it.

No SellingYour data
StripeHandles payments
30 DaysRequest response
Last updated: February 25, 2026 · Effective immediately
01

Overview

This Privacy Policy describes how Novex Research ("we," "our," or "us") collects, uses, and shares information about you when you use novexresearch.com or purchase products from us.

By accessing or using the site, you agree to this Privacy Policy. We may update this policy from time to time; continued use of the site after changes constitutes acceptance of the revised policy. The most recent version is always posted at this URL.

02

Information We Collect

Account Data

Name, email address, and hashed password when you create an account.

Order Data

Shipping address, billing address, email, and order contents at checkout. Payment card data is processed by Stripe — never stored on our servers.

Usage Data

Pages visited, time on site, referral source, browser type, OS via server logs. IP address and device type.

Communications

Messages, emails, or support requests you send to us directly.

03

How We Use Your Information

  • Process and fulfill your orders, including confirmation and shipping notification emails.
  • Maintain your account and allow you to view your order history.
  • Respond to support inquiries and resolve disputes.
  • Detect and prevent fraudulent transactions and platform abuse.
  • Comply with legal obligations including tax reporting and export control regulations.
  • Send transactional emails related to your orders only. We do not send unsolicited marketing emails unless you have explicitly opted in.
  • Improve our site and services through aggregate, anonymized analytics.
04

Data Sharing

We do not sell, rent, or trade your personal information to any third party for marketing purposes — ever.
Stripe, Inc.
Payment processing. Receives billing info to authorize payments.
Shipping Carriers
Name and shipping address shared to generate labels and deliver packages.
Email Provider
Used solely to deliver order confirmation and shipping notification emails.
Cloud Infrastructure
Servers and database infrastructure with access to encrypted data in the course of operating the service.

We may also disclose information if required by law, court order, or government regulation, or to protect the safety of any person or prevent fraud.

05

Data Retention

Account Data
Retained while active. Removed within 30 days of account deletion.
Order Records
7 years per tax and financial record-keeping requirements.
Server Logs
Maximum 12 months, then permanently deleted.
Analytics
Aggregate and anonymized. Maximum 12 months.
06

Your Rights

  • Access — Request a copy of the personal data we hold about you.
  • Correction — Request correction of inaccurate or incomplete data.
  • Deletion — Request deletion of your data, subject to legal retention requirements.
  • Portability — Request your data in a structured, machine-readable format.
  • Objection — Object to our processing of your data for certain purposes.
  • Withdrawal of consent — Where processing is based on consent, withdraw it at any time.

To exercise any of these rights, email [email protected]. We will respond within 30 days and may need to verify your identity before processing certain requests.

07

Cookies

Authentication Cookies

Required to keep you signed in. Essential and cannot be disabled without logging you out.

Cart Storage

Persists cart contents between visits, even when not logged in. Stored in localStorage.

Preference Cookies

Store UI preferences across sessions.

No Ad Tracking

We do not use third-party advertising cookies, cross-site tracking, or analytics that share your data with ad platforms.

You can clear cookies through your browser settings at any time, though doing so will log you out and clear your cart.

08

Security

  • TLS 1.3 encryption for all data in transit between your browser and our servers.
  • Passwords stored using bcrypt hashing with per-user salts — raw passwords are never stored.
  • Payment card data is never stored on our servers. All card processing is handled by Stripe (PCI DSS Level 1 certified).
  • Database access restricted by network firewall to authenticated application servers only.
  • Regular security audits and dependency vulnerability scanning.

Despite these measures, no system is 100% secure. If you believe your account has been compromised, contact us immediately at [email protected].

09

Contact & Jurisdiction

This Privacy Policy is governed by the laws of the United States. For users in the EEA, we process personal data on the lawful basis of contract performance (order fulfillment) and legitimate interests (fraud prevention and site security).

For all privacy-related inquiries: [email protected]

Privacy questions?

Submit a data access or deletion request, or ask us anything about this policy.

[email protected]